Versio.io

CVE-2021-23201

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 20-11-2021 04:15
Last modified: - 24-02-2022 08:13
Total changes: - 4

Description

NVIDIA GPU and Tegra hardware contain a vulnerability in an internal microcontroller, which may allow a user with elevated privileges to generate valid microcode by identifying, exploiting, and loading vulnerable microcode. Such an attack could lead to information disclosure, data corruption, or denial of service of the device. The scope may extend to other components.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
High
Attack complexity
Local
Attack vector
High
Availability
High
Confidentiality
High
Integrity
High
Privileges required
Changed
Scope
None
User interaction
7.5
Base score
0.8
6.0
Exploitability score
Impact score
 

Verification logic

AND
OR
vendor=nvidia AND product=geforce_gtx_950 AND version=-
vendor=nvidia AND product=geforce_gtx_960 AND version=-
vendor=nvidia AND product=geforce_gtx_970 AND version=-
vendor=nvidia AND product=geforce_gtx_980 AND version=-
vendor=nvidia AND product=geforce_gtx_titan_x AND version=-
vendor=nvidia AND product=jetson_nano AND version=-
vendor=nvidia AND product=jetson_nano AND version=- AND edition=-
vendor=nvidia AND product=jetson_nano AND version=- AND edition=developer_kit
vendor=nvidia AND product=jetson_tx1 AND version=-
vendor=nvidia AND product=quadro_m1000m AND version=-
vendor=nvidia AND product=quadro_m1200 AND version=-
vendor=nvidia AND product=quadro_m2000 AND version=-
vendor=nvidia AND product=quadro_m2000m AND version=-
vendor=nvidia AND product=quadro_m2200 AND version=-
vendor=nvidia AND product=quadro_m3000m AND version=-
vendor=nvidia AND product=quadro_m4000 AND version=-
vendor=nvidia AND product=quadro_m4000m AND version=-
vendor=nvidia AND product=quadro_m5000 AND version=-
vendor=nvidia AND product=quadro_m5000m AND version=-
vendor=nvidia AND product=quadro_m500m AND version=-
vendor=nvidia AND product=quadro_m520 AND version=-
vendor=nvidia AND product=quadro_m5500 AND version=-
vendor=nvidia AND product=quadro_m6000 AND version=-
vendor=nvidia AND product=quadro_m600m AND version=-
vendor=nvidia AND product=quadro_m620 AND version=-
vendor=nvidia AND product=shield_tv AND version=-
vendor=nvidia AND product=shield_tv_pro AND version=-
vendor=nvidia AND product=tesla_m10 AND version=-
vendor=nvidia AND product=tesla_m2050 AND version=-
vendor=nvidia AND product=tesla_m2070 AND version=-
vendor=nvidia AND product=tesla_m2070q AND version=-
vendor=nvidia AND product=tesla_m2090 AND version=-
vendor=nvidia AND product=tesla_m4 AND version=-
vendor=nvidia AND product=tesla_m40 AND version=-
vendor=nvidia AND product=tesla_m6 AND version=-
vendor=nvidia AND product=tesla_m60 AND version=-
vendor=nvidia AND product=tesla_p100 AND version=-
OR
vendor=linux AND product=linux_kernel AND version=-
vendor=microsoft AND product=windows AND version=-
 

Reference

 


Keywords

NVD

 

CVE-2021-23201

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.